MS.Windows.Intel.Indeo.Codec.Parsing.Heap.Overflow
Description
This indicates an attack attempt against a heap overflow vulnerability in
Microsoft Windows Intel Indeo Codec.
The vulnerability is caused by an error when the vulnerable library handles
a malicious video file. It allows a remote attacker to execute arbitrary code via sending a crafted AVI file.
Affected Products
Microsoft Windows 2000 Service Pack 4
Windows XP Service Pack 2 and Windows XP Service Pack 3
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP2 for Itanium-based Systems
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to the latest version, available from the vendor website.
http://www.microsoft.com/technet/security/advisory/954157.mspx
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-12-02 | 16.972 |